What is CVE-2026-23392?

CVE-2026-23392 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-03-25.

How severe is CVE-2026-23392?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Linux

CVE-2026-23392

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable after rcu grace period on error Call synchronize_rcu() after unregistering the hooks from error path, since a hook that already r…

EPSS: 0.000 (4.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Linux — versions 3b49e2e94e6ebb8b23d0955d9e898254455734f8, 4.16, 0

References

git.kernel.org/stable/c/d2632de96ccb066e0131ad1494241b9c281c60b8
git.kernel.org/stable/c/adee3436ccd29f1e514c028899e400cbc6d84065
git.kernel.org/stable/c/7e3955b282eae20d61c75e499c75eade51c20060
git.kernel.org/stable/c/c8092edb9a11f20f95ccceeb9422b7dd0df337bd
git.kernel.org/stable/c/e78a2dcc7cfb87b64a631441ca7681492b347ef6
git.kernel.org/stable/c/d73f4b53aaaea4c95f245e491aa5eeb8a21874ce

Frequently asked questions

What is CVE-2026-23392?: CVE-2026-23392 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-03-25.
How severe is CVE-2026-23392?: High severity. CVSS v3 base score is 7.8 out of 10.